Dell Networking N4000 Series Configuration Manual page 615
Stackable layer 2 and 3 switches
Hide thumbs
Also See for Networking N4000 Series:
- Getting started manual (378 pages) ,
- Configuration manual (17 pages) ,
- Reference manual (2332 pages)
Table of Contents
Advertisement
Command
continued
Purpose
• flag [+fin | -fin] [+syn | -syn] [+rst | -rst] [+psh | -
psh] [+ack | -ack] [+urg | -urg] [established]—
Specifies that the IP/TCP/UDP ACL rule matches on the
TCP flags.
– Ack – Acknowledgement bit
– Fin – Finished bit
– Psh – push bit
– Rst – reset bit
– Syn – Synchronize bit
– Urg – Urgent bit
– When "+<tcpflagname>
if specified <tcpflagname> flag is set in the TCP
header.
– When "-<tcpflagname>
if specified <tcpflagname> flag is *NOT* set in the
TCP header.
– When "established
either the RST or ACK bits are set in the TCP header.
– This option is visible only if protocol is "tcp".
icmp-type
• [icmp-type
icmp-message
message
for ICMP packets.
– When icmp-type is specified, IP ACL rule matches on
the specified ICMP message type, a number from 0
to 255.
– When icmp-code is specified, IP ACL rule matches on
the specified ICMP message code, a number from 0
to 255.
– Specifying icmp-message implies both icmp-type and
icmp-code are specified.
– ICMP message is decoded into corresponding ICMP
type and ICMP code within that ICMP type. This
option is visible only if the protocol is "icmp".
– IPv4 ICMP message types: echo echo-reply host-
redirect mobile-redirect net-redirect net-unreachable
redirect packet-too-big port-unreachable source-
quench router-solicitation router-advertisement time-
exceeded ttl-exceeded unreachable
Configuring Access Control Lists
"
is specified, a match occurs
"
is specified, a match occurs
" is
specified, a match occurs if
icmp-code
[icmp-code
] —Specifies a match condition
] | icmp-
615
Hide quick links:
Advertisement
Table of Contents
